Sr. Network Security Architect

About the job

Do you want to be part of a collaborative Security Architecture team?

Are you a security practitioner who understands Network, Cloud, and Perimeter Security and looking for a challenging role to innovate and define Guardian’s Cloud and Data Center security? Do you enjoy working with your leaders and colleagues in business and security teams to solve complex business challenges? Is a culture where “People Count,” “We Do the Right Thing,” and “We Hold Ourselves to Very High Standards” important to you? If so, Guardian is seeking a Sr. Network Security Architect to define and build responsive network and cloud security strategies that provides the ability to adapt to changing business and organization needs.

You Are

A self-starter who can work independently and can work cross-functionally in a matrixed environment and collaborate closely with other architects, engineers, & developers across the organization to ensure achievement of target business goals and objectives using a broad stack of technologies combining the traditional data center, Amazon cloud, and cloud Software-as-a-Service offerings.

You Will

  • Provide subject-matter expertise across all network security and encryption topics as it relates to both cloud and on-premises enterprise technology, and the relationship between these two architectural patterns.
  • Provide architectural and best practices leadership related to the implementation of Cybersecurity controls in Cryptography, Encryption, and Key Management including PKI, Hardware Security Modules, IPSEC and TLS VPNs, Proxies and Firewalls, HIDS/NIDS/IPS, and Wi-Fi security.
  • Research information on new, emerging technologies and methods in the security space and develop comprehensive security strategies for Encryption at-Rest/in-Transit, Crypto Agility, Zero Trust, and Internet of Things (IoT).
  • Work with various technology vendors to develop appropriate solutions exploring various deployment options such as cloud computing delivery models (IAAS, PAAS, and SAAS) and deployment models related to Public, Private and Hybrid Cloud service.
  • Evaluate inherent security characteristics of technologies and architectures used to protect information processing systems that contain sensitive data (e.g., HIPAA, PHI, PII, PFI, PCI), and recommend security controls and plans for remediation when required.
  • Work closely with business and solution architects to ensure documented prescriptive blueprints and security best practices are followed and enforced during app design and implementation.
  • Evaluate emerging security tools and technologies that align to the vision and strategic goals and objectives on the Security organization
  • Provide timely reporting into executive management on team deliverables and other updates
  • Communicate security risks and solutions to executive management, business partners and IT staff

Primary Location

United States-Pennsylvania-Bethlehem

Other Locations

United States-New Jersey-Holmdel, United States-Connecticut-Stamford


Information Technology




Day Job

Job Type



Yes, 25 % of the Time

Job Posting

Mar 27, 2022, 4:32:38 PM

You Have

  • Minimum 10 years of experience in Cyber Security practices, to include a combination of:
  • Minimum 7 years of security architecture knowledge and experience
  • Minimum 5 years of experience working with network communication protection technologies such as traditional Network Firewalls, Web Application Firewalls, VPNs, AWS Security Groups.
  • Experience architecting solutions within Amazon Web Services (AWS), Microsoft Azure and other cloud providers
  • Working knowledge of common network protocols such as DNS, BGP, HTTP/HTTPs
  • Working knowledge of API security and modern open security standards for token-based authentication
  • Good understanding and hand-on experience with Amazon Web Services, Google Compute Cloud and Microsoft Azure.
  • Working knowledge of Certificate Authorities / PKI, Digital Certificates, and Domain Registration practices
  • Familiarity with both Windows and Red Hat Linux; IBM AIX is a plus
  • Intrusion Detection and Incident Response is a plus
  • Preferred certifications include CISSP, CCNP, CEH, and especially SANS GIAC
  • In-depth and thorough knowledge of:
  • Familiarity with security industry standards (NIST 800 series, OWASP, IETF RFCs, etc.) and associated best practices
  • Privilege Access Management, Identity Governance and Provisioning
  • Identity and Access Management Systems (MFA, SSO, Reverse Proxies, PAM)
  • Security networking technologies like TLS, SSH, DNS, Firewalls, WAFs, etc.
  • Encryption algorithms and protocols
  • Management of keys and authentication secrets
  • SIEM (Security Information Event Management) Technologies
  • Software Development Lifecycle and tools
  • SAFe Agile framework
  • Experience with application TCP/IP diagnostics using Wireshark/tcpdump
  • Excellent written and verbal communications; effective interpersonal skills; strong formal presentation abilities.
  • Bachelor’s degree in a STEM (Science, Technology, Engineering, Math) discipline preferred; Alternatively, extensive employment experience will be considered


  • Bethlehem PA, New York city, Holmdel NJ, or Stamford CT with work from home flexibility
  • Up to 20% travel within US

Location & Vaccination Requirements

The primary location for this position is Bethlehem, Holmdel or Stamford

Covid – 19 vaccinations required for this position.

Any offer of employment will be contingent upon the candidate’s affirmation of being Full Vaccinated prior to commencing employment in the new role. New hires will have five business days from their start date to provide proof of vaccination through our Vaccination Status Confirmation Form. “Fully Vaccinated” means that at least two weeks have elapsed since you received the recommended number of doses of any COVID-19 vaccine that is currently fully approved, or authorized for emergency use, by the Food and Drug Administration or that have been listed for emergency use by the World Health Organization.

If an applicant is unable to be vaccinated due to a medical condition or a sincerely held religious belief, practice or observance, Guardian may provide reasonable accommodations. This policy may not apply to any Guardian colleagues working in a local jurisdiction (state, county, or city) that implements a law prohibiting a private employer from requiring vaccination, unless there is an applicable vaccine mandate from the federal government that would supersede the vaccination laws of the local jurisdiction. Guardian, in its sole discretion, may modify or terminate this requirement at any time.

Our Promise

  • At Guardian, you’ll have the support and flexibility to achieve your professional and personal goals.
  • Through skill-building, leadership development and philanthropic opportunities, we provide opportunities to build communities and grow your career, surrounded by diverse colleagues with high ethical standards

We Offer

  • Meaningful and challenging work opportunities to accelerate technology and innovation in a secure and compliant way
  • Competitive compensation
  • Excellent medical, dental, supplemental health, life and vision coverage for you and your dependents with no wait period
  • Life and disability insurance
  • A great 401(k) with match
  • Tuition assistance, paid parental leave and backup family care
  • Dynamic, modern work environments that promote collaboration and creativity
  • Flexible time off, dress code, and work location policies to balance your work and life in the ways that suit you best
  • Social responsibility in all aspects of our work. We volunteer within our local communities, create educational alliances with colleges, drive a variety of initiatives in sustainability, and advocate for diversity and inclusion in all that we do.

Guardian has been helping people protect their futures and secure their lives for more than 160 years. Every day, we serve approximately 29 million people through a range of insurance and financial products. As one of the largest mutual insurance companies, we know what matters most: putting the needs of our customers first. Because everyone deserves a Guardian. Learn more about Guardian at

Guardian is an equal opportunity employer. All qualified applicants will be considered for employment without regard to age, race, color, creed, religion, sex, affectional or sexual orientation, national origin, ancestry, marital status, disability, military or veteran status, or any other classification protected by applicable law.

© Copyright 2019 The Guardian Life Insurance Company of America, New York, NY. Company of America, New York, NY.

More Information

Apply for this job

Leave your thoughts

Share this job